$ rpki-client -vvf rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft File: d0ZKhG930cTTZqMGuAaTn88qYBo.mft (raw, json) Hash identifier: IEJpAnISFs2SvYuXE+5Hc/gftfi7zYKsE243gots5aY= Subject key identifier: B6:44:DB:C1:F7:A3:B9:A1:09:77:18:7E:34:F3:D4:94:6E:43:37:CB Authority key identifier: 77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A Certificate issuer: /CN=A91B74D6/serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft Manifest number: 0167 Signing time: Wed 25 Mar 2026 04:09:27 +0000 Manifest this update: Wed 25 Mar 2026 04:09:26 +0000 Manifest next update: Wed 01 Apr 2026 04:09:26 +0000 Files and hashes: 1: d0ZKhG930cTTZqMGuAaTn88qYBo.crl (hash: JF8m5Z6goOkwsrh5MSrPgNGwXNb85zHCKHJGb68mUa4=) 2: ABD84FB00F8A11EF943CC917C4F9AE02.roa (hash: pG6Zn0Fg273gHL0Q1D0WBR6oD/KGcYvvimAkz1OUMoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B74D6, serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Validity Not Before: Mar 25 04:09:26 2026 GMT Not After : Apr 1 04:09:26 2026 GMT Subject: CN=69c35ff6-5178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d9:27:1e:72:1e:fc:6b:78:ba:c9:6e:c1:89: 9e:ce:07:9e:e7:23:25:1b:3b:64:68:41:d1:e4:66: 5a:16:7c:0d:92:39:ae:4f:e2:48:89:14:b5:a6:68: a8:62:2d:6f:09:fd:32:28:05:f4:61:79:d2:6d:24: 9f:4f:b6:56:17:90:b5:2b:f5:d8:b3:b4:bd:c2:8d: 96:6e:0f:a0:9b:c5:25:1a:13:47:15:f0:dd:b6:fc: fb:22:9f:ac:45:f5:f5:94:5d:5c:01:89:4d:65:3a: 22:95:5f:5c:a8:79:3c:d4:9e:be:81:b7:b3:ee:32: 8c:f5:69:c3:8c:cb:87:05:f3:8d:8f:11:76:32:3c: 44:f9:15:95:fc:24:ce:60:9f:28:98:fd:f9:3e:c2: 55:64:b8:6c:8d:e5:6a:48:c6:aa:61:83:b1:99:88: 5c:97:36:c0:6e:82:b1:b4:7e:15:d2:19:1a:ea:b1: 5a:cd:21:4b:0c:c1:9c:be:b7:2b:ee:91:8c:d5:ef: a2:0e:a8:5b:f8:89:aa:f1:bb:b2:07:21:09:e6:f5: a2:27:48:93:21:57:30:b9:6f:13:16:3c:94:48:68: 68:6b:b2:20:d3:c2:e3:f3:b1:29:00:ab:43:e1:97: 74:8f:69:c5:16:99:f3:42:86:eb:56:f6:09:6b:fd: 22:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:44:DB:C1:F7:A3:B9:A1:09:77:18:7E:34:F3:D4:94:6E:43:37:CB X509v3 Authority Key Identifier: keyid:77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:55:d3:4a:56:df:4d:b9:5f:f0:db:6d:0d:16:e6:67:05:cc: 01:4a:80:51:5a:2b:2c:fc:54:5a:5a:59:f9:dc:d7:b2:d1:90: 91:fb:00:b7:a2:45:89:2f:49:d5:5d:94:de:20:3b:10:fe:c7: 5e:13:19:4e:4d:88:38:e4:0c:40:4f:d9:03:3f:9a:4f:63:74: af:68:e0:17:db:83:c0:49:44:58:24:61:e6:46:6f:75:a9:54: 67:12:2f:71:1c:dc:1d:32:ad:c4:06:58:22:23:09:d8:ad:3f: f8:1d:72:64:64:4c:e9:02:e6:6f:79:9e:a1:68:1c:6c:71:b9: b4:b1:ee:dd:df:82:cf:92:dd:c6:97:0b:8d:c1:fc:01:1c:43: 3f:e0:8d:1c:9c:96:e2:39:26:20:82:0d:51:a5:48:28:69:c7: 78:28:87:fa:2f:7a:84:b2:f6:80:b2:61:b9:5c:42:c0:d8:0c: 15:b5:33:e0:98:2b:2e:05:01:48:51:2c:53:02:65:7a:68:61: 63:05:0d:0b:f9:bf:e5:45:56:06:88:05:a5:f7:95:d3:6a:fd: b2:99:46:a8:d1:9d:c7:c4:4d:cc:3f:b7:f6:0a:0e:f5:df:28: e8:19:8c:bc:d0:49:c7:28:3c:3a:cc:76:5a:cd:de:d6:cf:7d: 3b:52:06:31 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc0RDYxMTAvBgNVBAUTKDc3NDY0QTg0NkY3N0QxQzREMzY2QTMwNkI4MDY5MzlG Q0YyQTYwMUEwHhcNMjYwMzI1MDQwOTI2WhcNMjYwNDAxMDQwOTI2WjAYMRYwFAYD VQQDEw02OWMzNWZmNi01MTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutknHnIe/Gt4usluwYmezgee5yMlGztkaEHR5GZaFnwNkjmuT+JIiRS1pmio Yi1vCf0yKAX0YXnSbSSfT7ZWF5C1K/XYs7S9wo2Wbg+gm8UlGhNHFfDdtvz7Ip+s RfX1lF1cAYlNZToilV9cqHk81J6+gbez7jKM9WnDjMuHBfONjxF2MjxE+RWV/CTO YJ8omP35PsJVZLhsjeVqSMaqYYOxmYhclzbAboKxtH4V0hka6rFazSFLDMGcvrcr 7pGM1e+iDqhb+Imq8buyByEJ5vWiJ0iTIVcwuW8TFjyUSGhoa7Ig08Lj87EpAKtD 4Zd0j2nFFpnzQobrVvYJa/0i3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLZE28H3 o7mhCXcYfjTz1JRuQzfLMB8GA1UdIwQYMBaAFHdGSoRvd9HE02ajBrgGk5/PKmAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzRENi9ERTIyQUQyNDBD REYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBjVFRacU1HdUFhVG44OHFZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwWktoRzkzMGNUVFpxTUd1QWFUbjg4cVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzRENi9ERTIyQUQyNDBDREYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBj VFRacU1HdUFhVG44OHFZQm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnFXTSlbfTblf8NttDRbmZwXMAUqAUVorLPxUWlpZ+dzXstGQkfsAt6JFiS9J 1V2U3iA7EP7HXhMZTk2IOOQMQE/ZAz+aT2N0r2jgF9uDwElEWCRh5kZvdalUZxIv cRzcHTKtxAZYIiMJ2K0/+B1yZGRM6QLmb3meoWgcbHG5tLHu3d+Cz5LdxpcLjcH8 ARxDP+CNHJyW4jkmIIINUaVIKGnHeCiH+i96hLL2gLJhuVxCwNgMFbUz4JgrLgUB SFEsUwJlemhhYwUNC/m/5UVWBogFpfeV02r9splGqNGdx8RNzD+39goO9d8o6BmM vNBJxyg8Osx2Ws3e1s99O1IGMQ== -----END CERTIFICATE-----Generated at Thu Mar 26 13:42:44 2026 by rpki-client